CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8872

8872 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2025-31397	WordPress Bus Ticket Booking with Seat Reservation for WooCommerce plugin <= 1.7 - SQL Injection vulnerability — Bus Ticket Booking with Seat Reservation for WooCommerce	9.3	Critical	2025-05-23
CVE-2025-31914	WordPress Pixel Form BuilderPlugin & Autoresponder plugin <= 1.0.2 - SQL Injection Vulnerability — Pixel WordPress Form BuilderPlugin & Autoresponder	9.3	Critical	2025-05-23
CVE-2025-39501	WordPress Goodlayers Hostel plugin <= 3.1.4 - SQL Injection vulnerability — Goodlayers Hostel	9.3	Critical	2025-05-23
CVE-2025-39504	WordPress Goodlayers Hotel plugin <= 3.1.4 - SQL Injection vulnerability — Goodlayers Hotel	9.3	Critical	2025-05-23
CVE-2025-46455	WordPress WP HRM LITE plugin <= 1.1 - SQL Injection Vulnerability — WP HRM LITE	9.3	Critical	2025-05-23
CVE-2025-46463	WordPress Mailing Group Listserv plugin <= 3.0.4 - SQL Injection Vulnerability — Mailing Group Listserv	8.5	High	2025-05-23
CVE-2025-46460	WordPress Easy Guide plugin <= 1.0.0 - SQL Injection Vulnerability — Easy Guide	9.3	Critical	2025-05-23
CVE-2025-46539	WordPress Fable Extra plugin <= 1.0.6 - SQL Injection Vulnerability — Fable Extra	9.3	Critical	2025-05-23
CVE-2025-47478	WordPress ProfileGrid plugin <= 5.9.5.0 - SQL Injection Vulnerability — ProfileGrid	8.5	High	2025-05-23
CVE-2025-47575	WordPress School Management plugin <= 92.0.0 - SQL Injection vulnerability — School Management	8.5	High	2025-05-23
CVE-2025-47599	WordPress Facturante plugin <= 1.11 - SQL Injection Vulnerability — Facturante	9.3	Critical	2025-05-23
CVE-2025-47640	WordPress Printcart Web to Print Product Designer for WooCommerce plugin <= 2.4.0 - SQL Injection Vulnerability — Printcart Web to Print Product Designer for WooCommerce	9.3	Critical	2025-05-23
CVE-2025-47671	WordPress Binary MLM Plan plugin <= 3.0 - SQL Injection vulnerability — Binary MLM Plan	7.6	High	2025-05-23
CVE-2025-48283	WordPress Majestic Support plugin <= 1.1.0 - SQL Injection Vulnerability — Majestic Support	9.3	Critical	2025-05-23
CVE-2025-41377	SQL injection vulnerability in Gandia Integra Total — Gandia Integra Total	9.1^AI	Critical^AI	2025-05-23
CVE-2025-5107	Fujian Kelixun xml_cdr_details.php sql injection — Kelixun	6.3	Medium	2025-05-23
CVE-2025-41407	SQL Injection — ADAudit Plus	8.3	High	2025-05-23
CVE-2025-36527	SQL Injection — ADAudit Plus	8.3	High	2025-05-23
CVE-2025-3893	SQL Injection in MegaBIP — MegaBIP	7.2^AI	High^AI	2025-05-23
CVE-2025-48701	openDCIM SQL注入漏洞 — openDCIM	5.4	Medium	2025-05-23
CVE-2025-48735	BOS IPCs SQL注入漏洞 — IP camera	4.3	Medium	2025-05-23
CVE-2024-13955	SQL Injection 2nd Order — ASPECT-Enterprise	8.8	High	2025-05-22
CVE-2025-5081	Campcodes Cybercafe Management System adminprofile.php sql injection — Cybercafe Management System	7.3	High	2025-05-22
CVE-2025-5079	PHPGurukul/Campcodes Online Shopping Portal updateorder.php sql injection — Online Shopping Portal	7.3	High	2025-05-22
CVE-2025-5078	PHPGurukul/Campcodes Online Shopping Portal subcategory.php sql injection — Online Shopping Portal	7.3	High	2025-05-22
CVE-2025-5077	Campcodes Online Shopping Portal edit-subcategory.php sql injection — Online Shopping Portal	7.3	High	2025-05-22
CVE-2025-41403	SQL Injection — ADAudit Plus	8.3	High	2025-05-22
CVE-2025-3836	SQL Injection — ADAudit Plus	8.3	High	2025-05-22
CVE-2025-5057	Campcodes Online Shopping Portal insert-product.php sql injection — Online Shopping Portal	7.3	High	2025-05-21
CVE-2025-5056	Campcodes Online Shopping Portal edit-products.php sql injection — Online Shopping Portal	7.3	High	2025-05-21

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8872 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8872